JAVA調用HTTPS雙向認證API

   最近稍微清閒，然後稍微研究一下關於HTTPS，SSL的相關知識，算是一些隨手筆記，對自己學習的記錄。

import java.io.BufferedReader;
import java.io.File;
import java.io.FileInputStream;
import java.io.FileNotFoundException;
import java.io.IOException;
import java.io.InputStreamReader;
import java.io.PrintWriter;
import java.io.UnsupportedEncodingException;
import java.net.HttpURLConnection;
import java.net.URL;
import java.security.KeyManagementException;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
import java.security.UnrecoverableKeyException;
import java.security.cert.CertificateException;
import java.util.List;
import java.util.Map;

import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.KeyManager;
import javax.net.ssl.KeyManagerFactory;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.TrustManager;
import javax.net.ssl.TrustManagerFactory;


public class HttpTest {
	public static String KEY_STORE_FILE="imp_client.p12";
	public static String KEY_STORE_PASS="nymeria";
	public static String TRUST_STORE_FILE="cvte.com.jks";
	public static String TRUST_STORE_PASS="123456";


	private static SSLContext sslContext;
	/**
	 * 向指定URL發送GET方法的請求
	 * 
	 * @param url
	 *            發送請求的URL
	 * @param param
	 *            請求參數，請求參數應該是 name1=value1&name2=value2 的形式。
	 * @return URL 所代表遠程資源的響應結果
	 * 
	 */
	public static String sendGet(String url, String param) {
		String result = "";
		BufferedReader in = null;
		try {
			String urlNameString = url + "?" + param;
			URL realUrl = new URL(urlNameString);
			// 打開和URL之間的連接
			HttpURLConnection connection = (HttpURLConnection) realUrl.openConnection();
			// 打開和URL之間的連接
			if(connection instanceof HttpsURLConnection){
				((HttpsURLConnection)connection)
				.setSSLSocketFactory(getSSLContext().getSocketFactory());
			}

			// 設置通用的請求屬性
			connection.setRequestProperty("accept", "*/*");
			connection.setRequestProperty("connection", "Keep-Alive");
			connection.setRequestProperty("user-agent",
					"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
			// 建立實際的連接
			connection.connect();
			// 獲取所有響應頭字段
			Map<String, List<String>> map = connection.getHeaderFields();
			// 遍歷所有的響應頭字段
			for (String key : map.keySet()) {
				//System.out.println(key + "--->" + map.get(key));
			}
			// 定義 BufferedReader輸入流來讀取URL的響應

			if(connection.getResponseCode()==200){
				in = new BufferedReader(new InputStreamReader(
						connection.getInputStream()));
			}else{
				in = new BufferedReader(new InputStreamReader(
						connection.getErrorStream()));
			}
			String line;
			while ((line = in.readLine()) != null) {
				result += line;
			}

		} catch (Exception e) {
			System.out.println("發送GET請求出現異常！" + e);
			e.printStackTrace();
		}
		// 使用finally塊來關閉輸入流
		finally {
			try {
				if (in != null) {
					in.close();
				}
			} catch (Exception e2) {
				e2.printStackTrace();
			}
		}
		return result;
	}

	/**
	 * 向指定 URL 發送POST方法的請求
	 * 
	 * @param url
	 *            發送請求的 URL
	 * @param param
	 *            請求參數，請求參數應該是 name1=value1&name2=value2 的形式。
	 * @return 所代表遠程資源的響應結果
	 */
	public static String sendPost(String url, String param) {
		PrintWriter out = null;
		BufferedReader in = null;
		String result = "";
		try {
			URL realUrl = new URL(url);
			// 打開和URL之間的連接
			HttpURLConnection conn = (HttpURLConnection) realUrl.openConnection();
			if(conn instanceof HttpsURLConnection){
				((HttpsURLConnection)conn)
				.setSSLSocketFactory(getSSLContext().getSocketFactory());
			}
			// 設置通用的請求屬性
			conn.setRequestProperty("accept", "*/*");
			conn.setRequestProperty("connection", "Keep-Alive");
			conn.setRequestProperty("user-agent",
					"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
			// 發送POST請求必須設置如下兩行
			conn.setDoOutput(true);
			conn.setDoInput(true);
			// 獲取URLConnection對象對應的輸出流
			out = new PrintWriter(conn.getOutputStream());
			// 發送請求參數
			out.print(param);
			// flush輸出流的緩衝
			out.flush();
			// 定義BufferedReader輸入流來讀取URL的響應
			if(conn.getResponseCode()==200){
				in = new BufferedReader(
						new InputStreamReader(conn.getInputStream()));
			}else{
				in = new BufferedReader(
						new InputStreamReader(conn.getErrorStream()));
			}
			String line="";
			while ((line = in.readLine()) != null) {
				result += line;
			}
		} catch (Exception e) {
			System.out.println("發送 POST 請求出現異常！"+e);
			e.printStackTrace();
		}
		//使用finally塊來關閉輸出流、輸入流
		finally{
			try{
				if(out!=null){
					out.close();
				}
				if(in!=null){
					in.close();
				}
			}catch(IOException ex){
				ex.printStackTrace();
			}
		}
		return result;
	}    

	public static SSLContext getSSLContext(){
		long time1=System.currentTimeMillis();
		if(sslContext==null){
			try {
				KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
				kmf.init(getkeyStore(),KEY_STORE_PASS.toCharArray());
				KeyManager[] keyManagers = kmf.getKeyManagers();

				TrustManagerFactory trustManagerFactory=TrustManagerFactory.getInstance("SunX509");
				trustManagerFactory.init(getTrustStore());
				TrustManager[]  trustManagers= trustManagerFactory.getTrustManagers();

				sslContext = SSLContext.getInstance("TLS");
				sslContext.init(keyManagers, trustManagers, new SecureRandom());
				HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
					@Override
					public boolean verify(String hostname, SSLSession session) {
						return true;
					}
				});
			} catch (FileNotFoundException e) {
				e.printStackTrace();
			} catch (NoSuchAlgorithmException e) {
				e.printStackTrace();
			} catch (IOException e) {
				e.printStackTrace();
			} catch (UnrecoverableKeyException e) {
				e.printStackTrace();
			} catch (KeyStoreException e) {
				e.printStackTrace();
			} catch (KeyManagementException e) {
				e.printStackTrace();
			}
		}
		long time2=System.currentTimeMillis();
		System.out.println("SSLContext 初始化時間："+(time2-time1));
		return sslContext;
	}


	public static KeyStore getkeyStore(){
		KeyStore keySotre=null;
		try {
			keySotre = KeyStore.getInstance("PKCS12");
			FileInputStream fis = new FileInputStream(new File(KEY_STORE_FILE));
			keySotre.load(fis, KEY_STORE_PASS.toCharArray());
			fis.close();
		} catch (KeyStoreException e) {
			e.printStackTrace();
		} catch (FileNotFoundException e) {
			e.printStackTrace();
		} catch (NoSuchAlgorithmException e) {
			e.printStackTrace();
		} catch (CertificateException e) {
			e.printStackTrace();
		} catch (IOException e) {
			e.printStackTrace();
		}
		return keySotre;
	}
	public static KeyStore getTrustStore() throws IOException{
		KeyStore trustKeyStore=null;
		FileInputStream fis=null;
		try {
			trustKeyStore=KeyStore.getInstance("JKS");
			fis = new FileInputStream(new File(TRUST_STORE_FILE));
			trustKeyStore.load(fis, TRUST_STORE_PASS.toCharArray());
		} catch (FileNotFoundException e) {
			e.printStackTrace();
		} catch (KeyStoreException e) {
			e.printStackTrace();
		} catch (NoSuchAlgorithmException e) {
			e.printStackTrace();
		} catch (CertificateException e) {
			e.printStackTrace();
		} catch (IOException e) {
			e.printStackTrace();
		}finally{
			fis.close();
		}
		return trustKeyStore;
	}
	public static void main(String[] args) throws UnsupportedEncodingException {
		Long time1=System.currentTimeMillis();
		int k=0;
		for(int i=0;i<100;++i){
			String result=sendGet("https://test.com", "username=x1");
			System.out.println(result);
			++k;
		}
		Long time2=System.currentTimeMillis();
		System.out.println("平均耗費時間:"+(time2-time1)/k);
	}
}